Dirty memory ratio and size can trigger ckpt

[githubzilla]

Here are some reminders before you submit the pull request

• Add tests for the change
• Document changes
• Reference the link of issue using fixes eloqdb/tx_service#issue_id
• Reference the link of RFC if exists
• Pass ./mtr --suite=mono_main,mono_multi,mono_basic

Summary by CodeRabbit

• New Features

  • Proactive dirty-memory monitoring with configurable check interval and size threshold to auto-trigger checkpoints.
  • Periodic sampling of dirty keys and enhanced checkpoint logging for improved observability.

• Bug Fixes / Improvements

  • Replaced one-off memory-full notification with continuous dirty-memory tracking to reduce spurious checkpoint signals and improve stability.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

Walkthrough

Adds periodic dirty-memory-based checkpoint triggering: CcShard samples AdjustDataKeyStats calls and runs CheckAndTriggerCkptByDirtyMemory(), estimating dirty memory from heap usage and dirty/data key counts, then requests an immediate checkpoint when configured or default thresholds are exceeded; removes the prior memory-full notify path.

Changes

Cohort / File(s)	Summary
Header tx_service/include/cc/cc_shard.h	Constructor signature extended with two new params; added CheckAndTriggerCkptByDirtyMemory() declaration and new private members for sampling and thresholds (adjust_stats_call_count_, dirty_memory_check_interval_, dirty_memory_size_threshold_mb_).
Shard implementation tx_service/src/cc/cc_shard.cpp	Constructor updated to accept and initialize the two new params; added #include <iomanip>; AdjustDataKeyStats now samples using adjust_stats_call_count_ and calls CheckAndTriggerCkptByDirtyMemory() periodically; new method reads heap stats, estimates dirty memory from dirty/data key ratio, determines threshold (configured MB or default 10% of memory_limit_), logs details, and calls ckpter_->Notify(true) when exceeded.
Request control flow tx_service/src/cc/cc_req_misc.cpp	Removed legacy code path that notified the checkpointer when memory was full (and related data-sync check); retains resetting free_count_ and marking the batch finished.
Initialization / Config core/src/tx_service_init.cpp	Added two global flags (dirty_memory_check_interval, dirty_memory_size_threshold_mb), read them in InitializeTxService, and propagate values into txservice_conf for shard construction.
Shard construction tx_service/src/cc/local_cc_shards.cpp	Passes the new dirty_memory_check_interval and dirty_memory_size_threshold_mb parameters into each CcShard constructor during shard setup.

Sequence Diagram(s)

sequenceDiagram
    participant Adjust as AdjustDataKeyStats
    participant Shard as CcShard
    participant Heap as ShardHeap
    participant Ckp as Checkpointer

    Adjust->>Shard: call / increment adjust_stats_call_count_
    alt sampling interval reached
        Adjust->>Shard: CheckAndTriggerCkptByDirtyMemory()
        Shard->>Heap: GetShardHeap()->Full(...)
        Heap-->>Shard: memory_limit, used, heap_allocated
        Shard->>Shard: compute dirty_memory = heap_allocated * (dirty_data_key_count_/data_key_count_)
        Shard->>Shard: determine threshold (config MB or 10% memory_limit)
        alt dirty_memory > threshold
            Shard->>Ckp: ckpter_->Notify(true)
            Ckp-->>Shard: checkpoint initiated
            Shard->>Shard: log shard id, dirty_memory_MB, threshold_MB, key counts
        else
            Shard-->>Adjust: continue normal operation
        end
    else
        Shard-->>Adjust: continue normal operation
    end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related issues

• [Feature]: Dirty memory size triggered CKPT #390: Implements dirty-key-ratio-based checkpointing and removes prior memory-full notify path, matching this PR's objectives.

Possibly related PRs

• enhancement: tune hash partition checkpoint params, increase ckpt scan buffer, fix hash ckpt partition calc, and limit min data sync scan concurrency #347: Modifies CcShard constructor and memory/checkpoint logic — strong overlap with constructor and checkpoint behavior changes.
• Fix underflow dirty size #401: Touches AdjustDataKeyStats in CcShard — related to the new periodic checkpoint sampling and logic.
• Index mem #323: Updates CcShard/LocalCcShards paths and memory-accounting/flush logic — overlaps with shard construction and memory-trigger behavior.

Suggested reviewers

• lzxddz
• liunyl
• MrGuin

Poem

🐇
I nibble logs and count the keys,
I sniff the heap and chase the breeze.
When muddy bytes cross my soft line,
I drum my paw and call "checkpoint!" fine. 🥕

🚥 Pre-merge checks | ✅ 1 | ❌ 2

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description consists only of a template checklist with unchecked items and provides no actual details about the changes, objectives, or implementation context.	Replace the template checklist with a meaningful description explaining the changes, why they're needed, and the approach taken. Ensure all checklist items are addressed or provide status updates.
Docstring Coverage	⚠️ Warning	Docstring coverage is 21.43% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'Dirty memory ratio and size can trigger ckpt' directly reflects the main changes in the PR, which add configuration and logic to trigger checkpoints based on dirty memory thresholds.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dirty_memory_trigger_ckpt

Tip

Issue Planner is now in beta. Read the docs and try it out! Share your feedback on Discord.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@tx_service/src/cc/cc_shard.cpp`:
- Around line 430-469: In CcShard::CheckAndTriggerCkptByDirtyMemory, add a
nullptr check for GetShardHeap() before calling Full() and return early if it is
null to avoid dereferencing an uninitialized heap; also guard the allocated
value (returned by Full()) so that if allocated <= 0 you treat it as 0 (or clamp
to 0) before computing dirty_memory and casting to uint64_t to avoid producing a
huge unsigned value when allocated is negative; update the dirty_memory
calculation to use the clamped allocated value and keep the rest of the
threshold logic and ckpter_->Notify(true) behavior unchanged.

🧹 Nitpick comments (1)

tx_service/src/cc/cc_shard.cpp (1)

63-73: Missing blank line before CcShard::CcShard and flag naming nit.

Minor: There's no blank line separating the gflag definitions from the CcShard constructor on Line 74, which hurts readability slightly.

More substantively, consider whether the default dirty_memory_ratio_threshold of 0.20 and dirty_memory_size_threshold_mb of 50 are appropriate for all deployment sizes. A 50 MB absolute threshold could be too low for large-memory nodes or too high for small ones. Since these are gflags, users can override them, but documenting guidance in the flag help string would be useful.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Null-check GetShardHeap() before dereferencing.

GetShardHeap() can return nullptr if InitializeShardHeap() hasn't been called yet. The existing guards (memory_limit_ == 0, data_key_count_ == 0) don't guarantee the heap is initialized.

Additionally, allocated is int64_t — if it's zero or negative (edge case), casting allocated * dirty_key_ratio to uint64_t on Line 444 would produce an incorrect large value.

Proposed fix

 void CcShard::CheckAndTriggerCkptByDirtyMemory()
 {
     if (memory_limit_ == 0 || data_key_count_ == 0 || ckpter_ == nullptr)
     {
         return;
     }
 
+    if (GetShardHeap() == nullptr)
+    {
+        return;
+    }
+
     // Get current memory usage
     int64_t allocated = 0, committed = 0;
     GetShardHeap()->Full(&allocated, &committed);
 
+    if (allocated <= 0)
+    {
+        return;
+    }
+
     // Calculate dirty memory

🤖 Prompt for AI Agents

In `@tx_service/src/cc/cc_shard.cpp` around lines 430 - 469, In
CcShard::CheckAndTriggerCkptByDirtyMemory, add a nullptr check for
GetShardHeap() before calling Full() and return early if it is null to avoid
dereferencing an uninitialized heap; also guard the allocated value (returned by
Full()) so that if allocated <= 0 you treat it as 0 (or clamp to 0) before
computing dirty_memory and casting to uint64_t to avoid producing a huge
unsigned value when allocated is negative; update the dirty_memory calculation
to use the clamped allocated value and keep the rest of the threshold logic and
ckpter_->Notify(true) behavior unchanged.

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@tx_service/src/cc/cc_shard.cpp`:
- Around line 446-455: The computed threshold in the shard's checkpoint logic
(variable threshold computed from FLAGS_dirty_memory_size_threshold_mb and
memory_limit_) can become zero for tiny memory_limit_ values, causing
dirty_memory > threshold to always be true; update the calculation in
cc_shard.cpp (the block that sets threshold using memory_limit_ and
FLAGS_dirty_memory_size_threshold_mb) to enforce a reasonable minimum floor
(e.g., a constant MIN_DIRTY_THRESHOLD_BYTES) or early-return when the computed
threshold would be zero so you don't trigger spurious checkpoint notifications;
ensure you reference memory_limit_, FLAGS_dirty_memory_size_threshold_mb, and
the local variable threshold when making the change.

🧹 Nitpick comments (1)

tx_service/src/cc/cc_shard.cpp (1)

30-30: Unused <iomanip> include.

The comment says std::setprecision but no <iomanip> facilities are used in this file. Consider removing it to keep includes clean.

Proposed fix

-#include <iomanip>  // std::setprecision

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

threshold may be zero when memory_limit_ is small.

When FLAGS_dirty_memory_size_threshold_mb == 0, the threshold is memory_limit_ * 0.1. If memory_limit_ is very small (e.g., < 10 bytes in a test), the truncation to uint64_t yields 0, making dirty_memory > threshold trivially true and spamming checkpoint notifications. Consider a minimum floor or an early return.

🤖 Prompt for AI Agents

In `@tx_service/src/cc/cc_shard.cpp` around lines 446 - 455, The computed
threshold in the shard's checkpoint logic (variable threshold computed from
FLAGS_dirty_memory_size_threshold_mb and memory_limit_) can become zero for tiny
memory_limit_ values, causing dirty_memory > threshold to always be true; update
the calculation in cc_shard.cpp (the block that sets threshold using
memory_limit_ and FLAGS_dirty_memory_size_threshold_mb) to enforce a reasonable
minimum floor (e.g., a constant MIN_DIRTY_THRESHOLD_BYTES) or early-return when
the computed threshold would be zero so you don't trigger spurious checkpoint
notifications; ensure you reference memory_limit_,
FLAGS_dirty_memory_size_threshold_mb, and the local variable threshold when
making the change.

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

core/src/tx_service_init.cpp (1)

217-234: ⚠️ Potential issue | 🟡 Minor

Avoid silent narrowing of dirty-memory values in tx_service_conf.
tx_service_conf stores uint32_t, but the new values are uint64_t; large settings will truncate without warning. Add a guard (or widen the map) before inserting.

🛠️ Suggested guard + explicit cast

+    if (dirty_memory_check_interval > std::numeric_limits<uint32_t>::max() ||
+        dirty_memory_size_threshold_mb > std::numeric_limits<uint32_t>::max())
+    {
+        LOG(ERROR) << "dirty_memory_* exceeds uint32_t max";
+        return false;
+    }
     std::map<std::string, uint32_t> tx_service_conf{
@@
-        {"dirty_memory_check_interval", dirty_memory_check_interval},
-        {"dirty_memory_size_threshold_mb", dirty_memory_size_threshold_mb}};
+        {"dirty_memory_check_interval",
+         static_cast<uint32_t>(dirty_memory_check_interval)},
+        {"dirty_memory_size_threshold_mb",
+         static_cast<uint32_t>(dirty_memory_size_threshold_mb)}};

// Add near includes if not already present
`#include` <limits>

🧹 Nitpick comments (2)

tx_service/include/cc/cc_shard.h (1)

324-328: Consider making CheckAndTriggerCkptByDirtyMemory() private.

The docstring states this is "called periodically from AdjustDataKeyStats", which is an internal call path. If no external caller needs it, moving it to the private section would better encapsulate the implementation detail. That said, keeping it public is acceptable if it simplifies unit testing.

tx_service/src/cc/cc_shard.cpp (1)

30-30: Unused #include <iomanip>.

The comment says this is for std::setprecision, but it's never used in the file. Remove the include to avoid clutter.

-#include <iomanip>  // std::setprecision

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@core/src/tx_service_init.cpp`:
- Around line 232-234: The map tx_service_conf is typed std::map<std::string,
uint32_t> but variables dirty_memory_check_interval and
dirty_memory_size_threshold_mb are uint64_t, risking silent truncation; fix by
either (A) clamping/casting the two values to uint32_t with a runtime check that
if value > UINT32_MAX it is set to UINT32_MAX (and optionally log/warn) before
inserting into tx_service_conf, or (B) add a static_assert or explicit runtime
assertion near the definitions of
dirty_memory_check_interval/dirty_memory_size_threshold_mb to ensure they never
exceed UINT32_MAX; update the insertion code that uses the keys
"dirty_memory_check_interval" and "dirty_memory_size_threshold_mb" accordingly
(perform clamp or assert prior to populating tx_service_conf).

🧹 Nitpick comments (2)

tx_service/src/cc/cc_shard.cpp (2)

427-434: Sampling placement: check only fires when dirty_delta != 0.

The counter increment and modulo check are inside the if (dirty_delta != 0) block (line 409), so the flag description ("every N calls to AdjustDataKeyStats") is slightly misleading — it's actually "every N calls where dirty_delta is non-zero." This is arguably more meaningful (only check when dirtiness changes), but the flag description could be updated for clarity.

Also, note that adjust_stats_call_count_ will be 0 on the very first call, and ++adjust_stats_call_count_ % dirty_memory_check_interval_ will equal 1 % N, so the first check won't happen until the N-th call — which is the expected behavior.

---

30-30: Remove unused <iomanip> include.

The std::setprecision function is not used in the file. The DLOG statement at line 476 performs integer division without any formatting precision requirements, making this include unnecessary.

Proposed fix

-#include <iomanip>  // std::setprecision

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Narrowing from uint64_t to uint32_t when inserting into tx_service_conf.

The map is std::map<std::string, uint32_t>, but dirty_memory_check_interval and dirty_memory_size_threshold_mb are uint64_t. Values exceeding UINT32_MAX will be silently truncated. This is unlikely to be a practical problem for these specific settings, and other entries in this map already have the same narrowing pattern (e.g., checkpointer_interval), but worth noting for correctness.

If the map's value type can't be widened (to avoid a larger refactor), consider adding a static_assert or runtime check clamping these values to UINT32_MAX before insertion.

🤖 Prompt for AI Agents

In `@core/src/tx_service_init.cpp` around lines 232 - 234, The map tx_service_conf
is typed std::map<std::string, uint32_t> but variables
dirty_memory_check_interval and dirty_memory_size_threshold_mb are uint64_t,
risking silent truncation; fix by either (A) clamping/casting the two values to
uint32_t with a runtime check that if value > UINT32_MAX it is set to UINT32_MAX
(and optionally log/warn) before inserting into tx_service_conf, or (B) add a
static_assert or explicit runtime assertion near the definitions of
dirty_memory_check_interval/dirty_memory_size_threshold_mb to ensure they never
exceed UINT32_MAX; update the insertion code that uses the keys
"dirty_memory_check_interval" and "dirty_memory_size_threshold_mb" accordingly
(perform clamp or assert prior to populating tx_service_conf).

[liunyl]

just clear adjust_stats_call_count_ when it reaches check interval to avoid expensive % call

[liunyl]

this should be pre calculated at cc shard initialization

[liunyl]

you should not spam notify when there's already a checkpoint ongoing

[liunyl]

why do you need 2 fields here?

[githubzilla]

dirty_memory_check_interval_: check dirty memory size every 1000 times of AdjustDataKeyStats call
dirty_memory_size_threshold_mb_: trigger ckpt when dirty memory size bigger than this value

[liunyl]

I mean dirty_memory_size_threshold_mb_ and dirty_memory_threshold_bytes_

[liunyl]

I mean dirty_memory_threshold_bytes_ and dirty_memory_size_threshold_mb_

[liunyl]

why is this changed to atomic? atomic and mutex + cv does not work well together

[githubzilla]

We have more work to do, since liuyl and I have new idea to control the frequency of the NotifyCKPT should be triggered

• Each ccshard will trigger CKPT individually, so we need to prevent the spam by check the request_ckpt_, but the mutex acquire too expensive, we change the type of request_ckpt_ as std::atomic, and using the release/acquire to guarantee the memory order.
• Before all DataSyncTask are finished on a core, the dirty memory footprint can be still high on that core, and the Ckpt will be triggered unnecessarily, we should avoid this issue.
  • Option 1: We keep track of the DataSyncTask for a core using a reference count, new Ckpt will be triggered only if the reference count is zero
  • Option 2: Define a minimum checkpoint interval to control the frequency

[liunyl]

I mean dirty_memory_size_threshold_mb_ and dirty_memory_threshold_bytes_

[liunyl]

We should keep this as a safety check. This should not trigger. But if user set some terrible params like check interval = 1000000 and dirty ratio = 99%, we might be stuck at memory full and unable to trigger checkpoint

[liunyl]

no need to use acquire.
no need to use high_resolution_clock.
Too expensive.
Save the current timestamp so you don't have do it twice

[liunyl]

I mean dirty_memory_threshold_bytes_ and dirty_memory_size_threshold_mb_

[liunyl]

We should keep the memory full check as a safety check. In case some terrible params are set, like check interval = 1000000 and dirty memory ratio = 99%, we might stuck at memory full and unable to trigger checkpoint.